瀏覽代碼

Adding comment option to iptables rule

Change-Id: I9d93052cfc197a364b42240448344d5543e8805f
pull/13/head
Dmitry Stremkouski 7 年之前
父節點
當前提交
afb406c73f
共有 3 個文件被更改,包括 5 次插入1 次删除
  1. +1
    -0
      README.rst
  2. +3
    -0
      iptables/_rule.sls
  3. +1
    -1
      tests/pillar/iptables_server.sls

+ 1
- 0
README.rst 查看文件

@@ -88,6 +88,7 @@ Allow access from local network
destination_port: 22
source_network: 192.168.1.0/24
jump: ACCEPT
comment: Blah

IPv6 is supported as well


+ 3
- 0
iptables/_rule.sls 查看文件

@@ -20,6 +20,9 @@ iptables_{{ chain_name }}_{{ rule_name }}:
{%- if rule.match is defined %}
- match: {{ rule.match }}
{%- endif %}
{%- if rule.comment is defined %}
- comment: {{ rule.comment }}
{%- endif %}
{%- if rule.connection_state is defined %}
- connstate: {{ rule.connection_state }}
{%- endif %}

+ 1
- 1
tests/pillar/iptables_server.sls 查看文件

@@ -10,4 +10,4 @@ iptables:
destination_port: 8088
source_network: 127.0.0.1
jump: ACCEPT
comment: Blah

Loading…
取消
儲存